Though this is late, posting this query for better understanding:
Why not just use Kerberos based authentication, which also work based on tickets based sessions, instead of having a new SSO architecture?
The real question is why not? In large environments you need something to control authentication/certificates/etc. SSO is that way so that people do not need to maintain AD or other items unrelated to virtualization. IN large environments it keeps the management nodes in sync wrt to users/passwords and does hook into AD.
Something was needed that is for sure. But not everyone maintains a kerberos based environment or even understands kerberos. SSO does not require that level of knowledge and is designed specifically for VMware's management tools.
Best regards,
Edward Haletky
Hi Friend,
Plz refer:VMware KB: vCenter Single Sign-On 5.1 FAQ
The real question is why not? In large environments you need something to control authentication/certificates/etc. SSO is that way so that people do not need to maintain AD or other items unrelated to virtualization. IN large environments it keeps the management nodes in sync wrt to users/passwords and does hook into AD.
Something was needed that is for sure. But not everyone maintains a kerberos based environment or even understands kerberos. SSO does not require that level of knowledge and is designed specifically for VMware's management tools.
Best regards,
Edward Haletky
I think you should go for on line assistance this is what i think